Naslov
A multiple layered approach to malware identification and classification problem

Autori
Kišasondi, Tonimir ; Klasić, Domagoj ; Hutinski, Željko

Vrsta, podvrsta i kategorija rada
Radovi u zbornicima skupova, cjeloviti rad (in extenso), znanstveni

Izvornik
Proceedings of the 21th Central European Conference on Information and Intelligent Systems, September 22-24.9.2010, Varaždin, Croatia / Boris Aurer, Miroslav Bača, Markus Schatten - Varaždin : Fakultet organizacije i informatike Sveučilišta u Zagrebu, 2010, 429-433

Skup
Central European Conference on Information and Intelligent Systems

Mjesto i datum
Varaždin, Hrvatska, 22.09.2010. - 24.09.2010

Vrsta sudjelovanja
Predavanje

Vrsta recenzije
Međunarodna recenzija

Ključne riječi
malware identification; multilayer classification; malware; botnets; static anaysis; runtime analysis

Sažetak
The increasing threat of malware is a constant problem for information system security. Current detection methods are showing lack in sufficiency and are bulky, with a slow response to high traffic needs and for new samples. In this work we will present a method for in-depth malware identification and classification. We will show a concept of a multi layered approach where we can detect and classify malware mixed with legit data samples based on speed or precision trade-offs. We will employ a classification and risk based method with various detection criteria that can identify various hazardous aspects of various malware instances. The classifiers will be organized in layers which will help us in building various high speed or high precision detectors based on the protection needs and requirements.

Izvorni jezik
Engleski

Znanstvena područja
Informacijske i komunikacijske znanosti

POVEZANOST RADA